Vyper Exploit in Curve Finance's Stable Pools Causes $24 Million Loss
On July 30, there were exploitations of several stable pools on Curve Finance that used Vyper, resulting in significant losses of approximately $24 million at the time of reporting. The vulnerabilities were identified in Vyper versions 0.2.15, 0.2.16, and 0.3.0, which were found to have malfunctioning reentrancy locks.
Vyper, a contract-oriented programming language targeting the Ethereum Virtual Machine (EVM) and known for its Pythonic features, reported that ongoing investigations revealed the issues with the mentioned versions. Projects relying on these versions were urged to contact Vyper immediately.
According to security firm Ancilia's analysis of affected contracts, 136 contracts were using Vyper 0.2.15 with reentrant protection, 98 contracts were using Vyper 0.2.16, and 226 contracts were using Vyper 0.3.0. The
First found on: https://coinatory.com/2023/07/31/vyper-exploit-in-curve-finances/?utm_source=BG&utm_medium=Blogger+Some+Crypto+Blog&utm_campaign=SNAP
Comments
Post a Comment